Connect with us

Cyber Crime

Image Matrix Tech on Sky News: Losing Twitter Legacy Blue Tick

Published

on

In Sunday’s segment on Sky News Australia (Weekend Edition with Tim Gilbert) we covered the removal of legacy blue ticks from verified users. I was one of them, so was my host Tim. I never thought of the Blue Tick as a status symbol. It just proved it was me. There was a great example of a crude, fake Disney Account that got verified with a Gold business tick. The person who set it upon could not believe it was approved. It didn’t last long when the news spread and Twitter cancelled the account.

This is a big moment for Twitter and yes, it needs to make money, but we need to know who people are through a proper verification process.

NEW IOT SECURITY REPORT FINDS SMART TVS ARE MOST VULNERABLE TO ATTACK

The BitDefender & NETGEAR 2023 IoT Security Landscape Report is a wakeup call.

  • Smart TVs (at 52%) are most vulnerable to attack followed by Smart Plugs (13%) and Routers (9%)
  • Denial-of-Service (DOS) is the most common attack and most attacks rely on known CVEs that have been weaponised and included in automated toolkits
  • Australian homes have an average of 20 connected devices, the US 46, Europe 25. Based on US stats home networks are attacked 8 times per day

While smart TVs account for only 5.4% of the devices connected to networks protected by Bitdefender security solutions, they are responsible for 52% of all identified vulnerabilities. When such a small fraction of devices generate so much trouble, it becomes clear that the TV manufacturers have not prepared as they should for the wave of possible problems.

Smart plugs are the second type of devices that have become increasingly unsafe. It’s easy to see why people might not consider them intelligent. In many cases, consumers connect them to networks and never recheck them, let alone perform updates to cover any potential vulnerabilities discovered in the meantime. There are less numerous than TVs, but they also account for 13% of all identified vulnerabilities.

Read more about the report here.

OPPO’S FIND N2 FLIP JUST GOT SMARTER

The OPPO Find N2 Flip has just received a local rollout of a major software update. The further enhances the functionality of cover display which is massive compared to the competition.  

The new Spotify Widget, jointly developed by OPPO and Spotify exclusively for the Find N2 Flip, maximises the utility of the largest cover screen of any flip phone. Users can enjoy full play control, the Heart button and content recommendations without unfolding their device.

A custom-built Speech-to-Text quick reply feature is also included, accessible through the cover screen when users receive a message. All apps that enable quick reply will support Speech-to-Text, including WhatsApp, Messenger, Messages by Google, Telegram and LINE. 

It signals OPPO’s four-year commitment to major device improvements. 

DJI MAVIC 3 PRO THREE CAMERA SYSTEM IS A GAMER CHANGER

The new DJI Mavic 3 Pro/Pro Cine have a three camera system – with two telephoto lens. It’s a game changer. You can shoot from longer distances without disturbing the subject. DJI has added a triple camera system to the Mavic Pro that unlocks the long lens compression look many of us are looking for in a travel friendly prosumer/professional drone. 

The 4/3 CMOS Hasselblad Camera combines with an upgraded 166mm tele camera (7x zoom) and an all-new 70mm f/2.8 medium tele camera. (3x zoom)

Hasselblad Camera: 4/3 CMOS, Effective Pixels: 20 MP
Medium Tele Camera: 1/1.3-inch CMOS, Effective Pixels: 48 MP
Tele Camera: 1/2-inch CMOS, Effective Pixels: 12 MP

The Mavic 3 Pro allows up to 43 minutes of flight time giving creators more time to consider their shot composition and less time worrying about battery life.  Further peace of mind is provided by Omnidirectional Sensing and APAS 5.0.  Eight wide-angle vision sensors work seamlessly with a high-performance vision computing engine to precisely sense obstacles in all directions and plan a safe flight route to avoid them.

Waypoint Flight: Automatically plans a flight route based on the user’s preset waypoints and can precisely repeat routes.

You can see a full product breakdown here.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Cyber Crime

Scammers Prefer Friday and Saturday Says Telstra

Published

on

Scammers are getting to know their targets very well. After analysing data from 2022 and 2023, Telstra says Australians are more likely to receive a dodgy text message on a Friday or a Saturday.

Telstra says it blocks on average 11% more scams on Friday and Saturday than any other day of the week. The big telco’s security operations also noted that scammers like to hassle Australians between 1am and 4am.

DJURO SEN APPEARS ON SKY NEWS WEEKEND EDITION TO DISCUSS TELSTA SMS SCAM DATA

By targeting Thursday and Friday scammers are clearly trying to take advantage of Australians when they are out partying or distracted by other weekend duties, like sleep. SMS is a preferred method because it usually involves a quick response and during these hours it’s a strategy that appears to be working.

The good news is we get a bit of a reprieve on Sundays with Telstra reporting it blocks almost 20% fewer scam messages compared to the weekly average.

But the overall numbers show that we are just keeping ahead of the bad guys. It’s important to remain vigilant as Telstra blocks an average of 11 million scam SMS messages every month – an increase of 69% year on year.

You can find more information on scams from Telstra here.

Continue Reading

AI

What You Need to Know Ahead of Windows Recall Release

Published

on

Microsoft’s next generation AI powered Copilot+ PCs will soon be available but one controversial Windows feature has already undergone a drastic overhaul. RECALL is – as Microsoft says – ‘a new way to instantly find something you’ve previously seen on your PC’ using on device AI.

Every few seconds Recall takes a snapshot of what appears on your screen. These images are analysed locally by AI so you are not sending anything to the cloud. Recall can then offer you a timeline of your computer use through a visual interface. It really is like having a ‘photographic memory’ of all the apps, websites, images and documents that you’ve interacted with on your PC.

Obviously this would be a treasure trove for cyber criminals if they could access it. Security experts are worried it could be abused once a user logs into their device. Once the drive is decrypted, the history recorded by Recall is potentially accessible by a bad actor.

As I mentioned in the Sky News Weekend Edition segment above, Offensive Cybersecurity Advocate, Alexander Hagenah, an ethical hacker, created TotalRecall to encourage Microsoft to make changes. And thankfully Microsoft did make changes.

“Even before making Recall available to customers, we have heard a clear signal that we can make it easier for people to choose to enable Recall on their Copilot+ PC and improve privacy and security safeguards,” said Corporate Vice President Windows + Devices Pavan Davuluri.

“With that in mind we are announcing updates that will go into effect before Recall (preview) ships to customers on June 18.”

So, not only has Microsoft made Recall opt-in only, users will also need to take more security steps to activate and actively use the feature once logged into Windows 11.

Recall is now off by default

RECALL SECURITY CHANGES

  1. If you don’t proactively choose to turn it on, it will be off by default.
  2. Windows Hello enrolment is required to enable Recall. In addition, proof of presence is also required to view your timeline and search in Recall.
  3. Additional layers of data protection including “just in time” decryption protected by Windows Hello Enhanced Sign-in Security (ESS) so Recall snapshots will only be decrypted and accessible when the user authenticates. In addition, we encrypted the search index database.
Windows Hello enrolment is required to enable Recall

MORE SECURITY NOTES ON RECALL

  • Snapshots are stored locally. Copilot+ PCs have new NPUs (Neural Processing Unit) and this allows on device AI processing. No internet or cloud connections are used to store and process snapshots. Microsoft says your snapshots are yours and they are not used to train the AI on Copilot+ PCs.
  • Snapshots are not shared. Recall does not send your snapshots to Microsoft. Snapshots are not shared with any other companies or applications. Recall doesn’t share snapshots with other users who are signed into the same device, and per-user encryption ensures even administrators cannot view other users’ snapshots.
  • You will know when Recall is saving snapshots. You’ll see Recall pinned to the taskbar when you reach your desktop. You’ll have a Recall snapshot icon on the system tray letting you know when Windows is saving snapshots.
  • Digital rights managed or InPrivate browsing snapshots are not saved. Recall does not save snapshots of digital rights managed content or InPrivate browsing in supported web browsers.
  • You can pause, filter and delete what’s saved at any time. You can disable saving snapshots, pause them temporarily, filter applications and websites from being in snapshots, and delete your snapshots at any time.
  • Enterprise and customer choice. For customers using managed work devices, your IT administrator is provided the control to disable the ability to save snapshots. Your IT administrator CANNOT enable saving snapshots on your behalf.

Microsoft also posted on its blog:

“In our early internal testing, we have seen different people use Recall in the way that works best for them. Some love the way it makes remembering what they’ve seen across the web so much easier to find than reviewing their browser history. Others like the way it allows them to better review an online course or find a PowerPoint. And people are taking advantage of the controls to exclude apps they don’t want captured in snapshots, from communication apps or Teams calls, or to delete some or all their snapshots. This is why we built Recall with fine-grained controls to allow each person to customise the experience to their comfort level, ensuring your information is protected and that you are in control of when, what and how it is captured.”

I’m attending the Australian launch of CoPilot+ PCs at Microsoft, so if there are any more changes, I’ll report back to you.

Continue Reading

Bitfender

Avoid Being Scammed: Bitdefender Scamio Now in WhatsApp

Published

on

Revealed First on Sky News Weekend Edition Tech Chat with Djuro Sen

Bitdefender’s excellent AI chatbot – Scamio – is now integrated with WhatsApp. Scamio is a free service that analyses suspicious links, texts or QR codes. I started using the web app when it first launched and now I’ve been testing it within WhatsApp.

On your phone, click here to add Scamio as a contact in WhatsApp. From there you’ll have to login/create a free Bitdefender account. Once you’re connected, simply drop suspicious content, like a link or text message into a conversation with Scamio. Describe how you received the possible scam and what concerns you have about it.

 Scamio analyses and provides a verdict in a few seconds, sometimes a bit longer, along with recommendations on further actions. It’s a great contact to have in your database.

The conversational manner in which the checking takes place also makes it easier to understand what potential problems you could be facing.

Bitdender says, “Scamio was developed to disrupt criminal operations as threat actors rapidly increase adoption of AI and large language models and use of popular messaging apps and online services to steal money, credentials, and personal data. ”

The QR code option is a good one to look at I believe. Many people just automatically scan and click without checking if the site is legitimate. According to the Global State of Scams – 2023 Report, 76 per cent of respondents encountered an online scam at least once a month.

It definitely pays to stay alert.

Continue Reading
Advertisement

Recent Most Popular